Skip to content
This repository was archived by the owner on May 7, 2025. It is now read-only.

2.2.6

Choose a tag to compare

View all tags
@cgarlati cgarlati released this 13 Jan 00:26
· 6 commits to master since this release
v2.2.6
f6e9312
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Release notes

  • update ext/mbedtls to 2.28.2 and rebuild lib
  • zone1: fix lwip thread wfi timeout and add "restart" msg
  • update arty7 .mcs release files and README.md links
  • hexfive-conf @7a9dd5 (v2.2.6)
  • hexfive-ker @261971 (v2.2.6)

Security

  • https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2

  • Fix potential heap buffer overread and overwrite in DTLS if
    MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and
    MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.

  • An adversary with access to precise enough information about memory
    accesses (typically, an untrusted operating system attacking a secure
    enclave) could recover an RSA private key after observing the victim
    performing a single private-key operation if the window size used for the
    exponentiation was 3 or smaller. Found and reported by Zili KOU,
    Wenjian HE, Sharad Sinha, and Wei ZHANG. See "Cache Side-channel Attacks
    and Defenses of the Sliding Window Algorithm in TEEs" - Design, Automation
    and Test in Europe 2023.

Assets 4
Loading